Miembros de
Boletines de Vulnerabilidades |
IBM Security Bulletin: Proof of Concept exploit code, which uses a flaw in glibc that can allow a local unprivileged user to gain root on Linux machine in IBM QRadar Incident Forensics (CVE-2014-5119) |
|
Información sobre el sistema |
|
| Software afectado | IBM |
Descripción |
|
|
A vulnerability in the GNU C library (glibc) can allow a local unprivileged user to gain root on some Linux machines. To exploit this flaw, an attacker needs to be able to run unprivileged arbitrary code on the local system. CVE(s): CVE-2014-5119 Affected product(s) and affected version(s): IBM QRadar Incident Forensics 7.2.3 and below Refer to the following reference URLs for remediation and additional vulnerability details: Source Bulletin: More info: https://www-304.ibm.com/connections/blogs/PSIRT/entry/ibm_security_bulletin_proof_of_concept_exploit_code_which_uses_a_flaw_in_glibc_that_can_allow_a_local_unprivileged_user_to_gain_root_on_linux_machine_in_ibm_qradar_incident_forensics_cve_2014_5119 |
|
Identificadores estándar |
|
| Propiedad | Valor |
| CVE | CVE-2014-5119 ,CVE-2014-3508 ,CVE-2014-3509 ,CVE-2014-3511 ,CVE-2014-3566 ,CVE-2014-6145 ,CVE-2014-1568 ,CVE-2014-4263 ,CVE-2012-5784 ,CVE-2014-3513 ,CVE-2014-3567 ,CVE-2014-3568 ,CVE-2014-3086 ,CVE-2014-4227 ,CVE-2014-4262 ,CVE-2014-4219 ,CVE-2014-4268 ,CVE-2014-4218 and CVE-2014-4252. |
Histórico de versiones |
||
| Versión | Comentario | Fecha |
| 1.0 | Advisory issued | 2014-12-18 |